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Abstract In this paper, we prove the strong normalisation for Martin- 
Lof's Logical Framework, and suggest that "correct arity", a condition 
weaker than well-typedness, will also guarantee the strong normalisation. 

1 Introduction 

The normalisation proofs for dependently typed systems are known to be 
notoriously difficult. For example, if we have a task to prove strong nor- 
malisation for Martin-L6f 's Logical Framework (MLF) (in the Appendix), 
and if we use typed operational semantics as in |Gog94], the proof would 
be more than one hundred pages long. When a proof is long and compli- 
cated, it is likely found to contain mistakes and bugs |Coq85|CG90JAit 94j. 
This paper presents an elegant and comprehensible proof of strong nor- 
malisation for MLF. 

We often associate well-typedness with strong normalisation in type 
systems. But this paper suggests that well-typedness may have little to do 
with strong normalisation in essence, and proves that terms with correct 
arities are strongly normalising. The condition of "correct arity" is weaker 
than that of well-typedness (i.e. well-typed terms have correct arities). 
This paper will also demonstrate the difference between types and arities 
when we extend MLF with some inductive data types and their compu- 
tation rules. New reduction rules will not increase the set of terms with 
correct arities, but they will usually increase the set of well-typed terms. 
One of the reasons is that there are reductions inside types (i.e. one type 
can be reduced to another type) in a dependently typed system but there 
is no reduction for arities. 

Our goal is to prove the strong normalisation w.r.t. (3 and r/-reduction. 
But it is very difficult to prove it directly. An important technique in the 
paper is that, we extend the definition of terms and kinds, and introduce 



a new reduction rule 02 for kinds. Then, we prove a stronger and more 
general property, that is, strong normalisation w.r.t. 0, r\ and /^-reduction. 
In this way, the proof becomes easier although the property is stronger. 
Without the /^-reduction, the proof of soundness in SectionQ]is impossible 
to go through. 

In Section we give some basic definitions that are used throughout 
the paper. In Section 03 the inference rules of arities are formally pre- 
sented. In Section QJ we give more definitions such as saturated sets, and 
prove the strong normalisation for the arity system. In Section the com- 
putation rules for the type of dependent pairs and finite types and simple 
computation rules for universes are introduced. The strong normalisation 
for a dependently typed system is proved by the commutation property 
between these rules and /^-reduction. The conclusions and future work are 
discussed in the last section. 



Related work Logical frameworks arise because one wants to create a 
single framework, which is a kind of meta-logic or universal logic. The Ed- 
inburgh Logical Framework | HHP87|HHP92| presents logics by a judgements- 
as-types principle, which can be regarded as the meta-theoretical analogue 
of the well-known propositions- as-types principles [<pF58 dB80 How80j. 
Martin-L6f 's logical framework |ML84|NPS90j has been developed by 
Martin-L6f to present his intensional type theory. In UTT |Luo94j . Luo 
proposed a typed version of Martin-L6f 's logical framework, in which 
untyped functional operations of the form (x)k are replaced by typed 
[x : K)k. 

There are many normalisation proofs for simply typed systems and de- 
pendently typed systems in literature |Bar92)Luo90)Alt93| |MW96|Gog94l 
[Geu93 Wer92j. The techniques employed in this paper such as the inter- 
pretation of arities and saturated sets are inspired by and closely related 
to the proof for simply typed calculus in |Bar92j . The concept of arity 
is well-known in mathematics and it is often defined as the maximum 
number of arguments that a function can have. But in this paper, the 
definition of arity and the concept of "correct arity" are different. The 
complexity of the normalisation proof for MLF is dramatically decreased 
because of this concept and other techniques such as a new case of kinds 
and the corresponding /^-reduction. The commutation property was also 
studied in literature such as |Bar84ICos9fij . The properties of Church- 
Rosser and strong normalisation for finite types in simply typed systems 
are also studied in |SCf)4j . 
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2 Basic definitions 



In this section, we give some basic definitions that will be used later, and 
give the redice and the corresponding reduction rules. 

Definition 1. (Terms and Kinds) 

• Terms 

1. a variable is a term, 

2. Xx : K.M is a term if x is a variable, K is a kind and M is a 
term,, 

3. MN is a term if M and N are terms. 

• Kinds 

1. Type is a kind, 

2. El(M) is a kind if M is a term, 

3. (x : K\)K2 is a kind if K\ and K2 are kinds, 
J f . KN is a kind if K is a kind and N is a term. 

Remark 1. Terms and kinds are mutually and recursively defined. This 
definition allows more terms and kinds than that of MLF since the forth 
case for the definition of kinds is not included in MLF (see Appendix for 
details). 

Notation: Following the tradition, A denotes the set of all terms and 
II the set of all kinds. We sometimes write f(a) for fa, f(a, b) for 
(fa) b and so on. [N/x]M stands for the expression obtained from M 
by substituting N for the free occurrences of variable x in M. FV(M) 
is the set of free variables in M. 

Redice and reduction rules 

There are three different forms of redice: (Xx : K.M)N, ((x : K\)K2)N 
and Xx : K.Mx when x FV(M). The reduction rules for these redice 
are the following. 

(Xx : K.M)N — [N/x]M 

((x-.K^^N -^f3 2 [N/x]K 2 
Xx : K.Mx — > v M x FV(M) 

Remark 2. The second rule — >p 2 is new and is not included in MLF. 
This rule will make the soundness proof go through easily although the 
property is stronger and more general. 
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Notation: — >r represents one-step -R-reduction, precisely, M — >r N 
if a sub-term P of M is a i?-redex and N is obtained by replacing P by 
the result after applying the reduction rule R. M -»r N means there 
is or more but finite steps of i?-reduction from M to N. M TV 
means there is at least one but finite steps of i?-reduction from M to 
N. 

Definition 2. (Arities) 

• Zero is an arity, 

• (01,02) is an arity if a\ and 02 are arities. 
Notation: 17 denotes the set of all arities. 

3 Inference rules 

In this section, we formally present the inference rules of arities. 
The judgement form will be the following form, 

A h M : a 

where A =< x\ : a\,...,x n : a n > is a finite sequence of 
variable and o« is an arity; M is a term or kind; and a is an arity. We 
shall read this judgement like "under the context A, the term or kind M 
has arity a". 

Notation For a context A = x\ : ai,...,x n : a n , FV(A) represents the 
set {xi , .. ., x n } . 

All of the inference rules of arities are in Figure Q 

Definition 3. We say that a term or kind M has a correct arity if 

Ah M : a is derivable for some A and a. 

Remark 3. We have the following remarks: 

• A well- typed term has a correct arity (a proof will be given later), 
but a term which has a correct arity is not necessarily well-typed. For 
instance, under the context 

A : Type, B : Type, C : Type, f : (x : A)C, b : B 

the term f(b) is not well-typed, but it has a correct arity Zero under 
the following context 

A : Zero, B : Zero, C : Zero, f : (Zero, Zero), b : Zero 
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Contexts: 

A valid x FV(A) a € Q 
<> valid A,x : a 

Inference rules for kinds: 

A valid Ah- M : Zero 

A h Type : Zero A h El(M) : Zero 

A\-Ki:ai A, x : m h K 2 : a 2 A h K : (ai, a 2 ) ^4 h AT : ai 

yl h (x : : (ai,a 2 ) AhM:« 2 

Inference rules for terms: 

A, x : a, A valid 
A,x : a, A' h x : a 

A h K : ai A,x : ai h M : a 2 Ah M : (ai, a 2 ) A h iV : ai 

yl h Aa; : JT.M : (oi,a 2 ) A h MiV : a 2 



Figurel. Inference rules of arities 



Another example with dependent type is that, under the context 

A : Type, B : (x : A)Type, f : (x : A)(y : B(x))Type, 
xi : A, x 2 : A, b : B(x 2 ) 

the term f(x\,b) is not well-typed, but it has a correct arity Zero in 
the following context 

A : Zero, B : {Zero, Zero), f : (Zero, (Zero, Zero)), 
xi : Zero, x 2 ■ Zero, b : Zero 

• For any judgement A h M : a, M must be either a kind or a term. A 
derivation such as AhE^Typ^Zero ' s no ^ P oss ible, because El(Type) is 
neither a term nor a kind. 

Lemma 1. // both A h M : a and Ah M : b are derivable then a and b 
are syntactically the same (a = b). And A h MM : a is not derivable for 
any A, M and a. 

Proof. By induction on the derivations of A h M : a and Ah M : b. 
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Remark 4- One may recall that the non-terminating example vou: where 
u = Xx.xx. It is impossible that cj is well-typed in a simply typed calculus 
[Bar92]. By Lemma Q it is also impossible to have a correct arity for u. 



4 Normalisation proof 

In this section, we give more definitions such as saturated sets to prove 
the strong normalisation for the arity system. 

Definition 4. (Interpretation of arities) 

• SN A =df {M G A | M is strongly normalising} . 

• SN n =df {M 6 II I M is strongly normalising} . 
. \Zero\ A = d} SN A . 

• \Zero\ n = df SN n . 

• l( ai ,a 2 )} A = d f {M G A | VX G [ ai J A , MX G [a 2 f }. 
. l(a 1 ,a 2 )j n = df {K G 77 | VX G [a^, XX G \a 2 \ n }. 

Remark 5. {a} A is a set of terms, while [a]] 77 is a set of kinds for any arity 
a. 

Notations: We shall write R for R±,R 2 , R n for some n > 0, and Mi? 
for (...((MR^.-Rn). 

Definition 5. (Saturated sets) 

• subset X C SX 71 is called saturated if 

1. VR G SN A , xR G X where x is any term variable, 

2. Vi? G SX A , VQ G SN A and VX G SN n , 

([Q/x]P)R G X => (Ax : K.P)QR G X 

• ,4 su&set F C SN n is called saturated if MR G SN A , VX G 5iV^ and 
VXi G SX 77 , 

([X/x]iY 2 )i? K X )K 2 )NR G Y 

• SAT 71 = d/ {X C | X is saturated} 

• SAT 17 = df {Y C SX 77 [ Y is saturated} 

Lemma 2. (Arities and saturated sets) 

• SX 71 G 5AT A and SN n G SAT n . 

• a G 12 => [a] A G 5^ and H 77 G SAT n . 
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Proof. By the definition of saturated sets and by induction on arities. 

• Let's prove SN A G SAT A first. We have SN A C SN A and xP G SN A 
if 7? G SW 71 . Now we need to prove for Q,R G SW 71 and K G S7V 77 , 

([Q/x]P)P G SN A => (Ax : K.P)QR G SiV 71 

Since ([Q/x]P)P G SAT 71 , we have P G_5iV^ and aft_er any finitely 
many steps reducing inside P, Q and R, ([Q' /x]P')R' G 5 AT 71 with 
P P' , Q -^ Pv _Q' and P R>. 

From (Ax : K.P)QR, after any finitely many steps reducing inside P, 
<5, P and K, and we get (Ax : K'.P')Q'R'. From here, we may have 
two choices. 

• (Ax : K'.P')Q'R! — > p ([Q'/x}P')Pj 

• P = Px and x PF(P) and 

(Ax : K'.P')Q'PJ — ^ FQ'R 7 = ([Q f /x}P')PJ 

For both cases, because ([Q'/x]P')R/ G SN A , we have (Ax : K.P)QR G 
SN A . 

• The proof of SN n G SAT n is similar to that of SA^ G SAT A . 

• Now, let's prove [a]" 4 G SAT 71 by induction on a. The base case (i.e. 
\Zero\ A = SAT 71 G SAT A ) has been proved. So we only need to prove 
[(ai,a 2 )]] yl G SAT A . By induction hypothesis, we have [en] 71 G SAT A 
and la 2 j A G SAT A . 

Then we have x G [ai] 71 for all variable x. Therefore 

Pe [(ai,a 2 )f ^PxG [oaf 
=► Px G SN 71 
=/- P G SW 71 

So, we have [(en, as)] 71 C SN A . 

Now, we need to prove that for any variable x and VP G SN A , we 
have xP G [(01,02)]^- This means 

ViV G { ai j A xRN G \a 2 \ A 

which is true since \ai} A C SN 71 andjt^ G S.4T 71 . 

Finally, we need to prove that for VP G SW 71 , VQ G SW 71 and VP G 

SN n , 

([Q/x]P)R G l{ ai ,a 2 )j A (Ax : P.P)QP G [(a 1; a 2 )f 
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Since {{Q/x\P)R G l( ai ,a 2 )} A , we have {{Q/x\P)RN G {a 2 \ A for 
ViV G [ai] A ._And since [ai] 71 C SN A and M 71 G SAT A , we have 
(Ax : K.P)QRN G [as] 71 and hence 

(Xx-.K.P)QRe [(01, 02)!^ 

• The proof of [a] 77 G SAT n is similar to that of [a] 71 G SAT A □ 
Notation: We often use SN for SiV 71 U SN n and [a] for {aj A U [a] 77 . 

Definition 6. (Valuation) 

• ^4 valuation is a map p : V —> A, where V is the set of all term 
variables. 

• Let p be a valuation. Then 

\M\ P = df [p(x 1 )/x 1 ,...,p{x n )/x n ]M 

where x±, ...,x n are all of the free variable in M. 

• Let p be a valuation. Then 

■ p satisfies M : a, notation p \= M : a, if \M^ p G \a\; 

■ p satisfies A, notation p\= A, if p \= x : a for all x : a G A; 

■ A satisfies M : a, notation A \= M : a, if 

Vp (p \= A => p \= M : a) 

Remark 6. For any valuation p, if M is a term, [M\ p is also a term, and 
similarly, if M is a kind, \M\ p is also a kind. If a valuation p satisfies that 
p(x) = x then \M\ p = M. 

Lemma 3. (Soundness) Ah M : a ==>■ A |= M : a where M is a term 
or kind. 

Proof. By induction on the derivations of A h M : a. 

1. The last rule is 

A valid 
A h Type : Zero 

Since [Typejp = Type for any p and Type G 5iV = \Zero\, we have 
[Type]p G {Zero}. 

2. The last rule is 

A h M : Zero 
I h M(M) : Zero 

Since [£/(M)] p = £Z([M] p ) for any p and [M] p G {Zero} = SN, we 
have \El{M)} p € SN = {Zero}. 
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3. The last rule is 



A h K\ : a\ A, x : a\ h K 2 : 02 
4 P (x : Ki)K 2 : (01, a 2 ) 

We must show that 



Vp (p \= A => p \= (x : K X )K 2 : (a 1; a 2 )) 

That is, we must show that [(x : Ki)iT2]p G [(ai, CJ2)]] 77 . By the 
definition of [(ai, CI2)] 77 , we must show that, for all N G [ai] 71 , 



l(x : K^K^N G [a 2 ] 



Note that 



[(x-.KjKzjpN = {[x : K[)K' 2 )N 
[N/x\K' 2 

= l K 2jpU(N/x) 

where K[ = {K^ = [p^)/^...]^ and K 2 = {K 2 \ p = [p( yi )/ yi ...]K 2 
Now, let's consider the induction hypothesis. Since pU (N/x) \= A, x : 
ai, we have {KiJ p € [ai]] 77 and [^IpuC/v/x) € [K] 77 - So, we have 
[N/x\K' 2 G [asl 77 , and because [02! 77 is saturated, we have ((x : 
K'JK'JN G \a 2 \ n , i.e. \{x : K^K^pN G \a 2 \ n . Note that, since 
[ail 71 C SN A and M 77 C SN n , we know that JV G 5iV^ and 
K{ G SiV 77 . 
4. The last rule is 

^ h iY : (ai,a 2 ) ^ h N : a\ 
A P iTiV : a 2 

We must show that 



Vp (p h A => p |= KiV : o 2 ) 
By induction hypothesis, we have \K\ p G [(ai, a^)] 77 and \N\ p G 

By the definition of [(ai, a 2 )] 77 , we have pf] p [iV]p G M 77 , i.e. 
lKN} p Gia 2 } n . 
5. The last rule is 

A, x : a, A' valid 
A,x : a, A' h x : a 

Easy. 
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6. The last rule is 

A h K : a\ A, x : a\ h M : a 2 
A h Xx : KM : (ai,a 2 ) 

Similar to case 3. 

7. The last rule is 

A\- M : (a 1 ,a 2 ) Ah N : ai 
A h MN : a 2 

Similar to case 4. □ 

Theorem 1. If Ah M : a, then M is strongly normalising. 

Proof. By Lemma and take the evaluation po that satisfies po(x) = x. 
By Lemma 01 we have A \= M : a. So, by definition, we have 

po (= 4 =► po H M : ° 

Suppose A = x\ : ai, ...,x n : a n . Since [aj]] 71 G SAT^, we have Xj G [ai] 71 - 
Hence po (= ^- So, we have po |= M : a and hence M = [Mj po E [a] C 
SN. □ 



Translation from kinds to arities 

Now, we define a map to translate kinds to arities, and prove that well- 
typed terms have correct arities. 

Definition 7. A map arity : H — » fi is inductively defined as follows. 

• arity(Type) = Zero, 

• arity{El{A)) = Zero, 

• arity((x : K\)K 2 ) = (arity (K\), arity : (K 2 )). 

Notation: Suppose a context r = x\ : K\, ...,x n : K n , then arity(r) = 
x\ : arity (Ki), ...,x n : arity(K n ). 

Theorem 2. (Well-typed terms have correct arities) If T h M : K 

is derivable in MLF, then arity (r) h M : arity(K) is derivable. 

Proof. By induction on the derivations of r h M : K (see the inference 
rules of MLF in Appendix). 

Theorem 3. If T h M : K is derivable in MLF, then M is strongly 
normalising. 

Proof. By Theorem ^ and Theorem I3 
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5 Computation rules 

In this section, we shall introduce computation rules for the type of de- 
pendent pairs and finite types and simple computation rules for universes. 
The strong normalisation is proved in a way that no one has ever take 
before in dependently typed systems, to the author's best knowledge. Re- 
call that adding new computation (or reduction) rules will not increase 
the set of terms with correct arities. The basic strategy we adopt is to 
prove strong normalisation one reduction rule after another. That is, if we 
have already proved strong normalisation for a set of reduction rules, after 
adding one new reduction rule, can we still prove strong normalisation? 
This strategy will not work for dependently typed systems if we want to 
prove the statement that "well-typed terms are strongly normalising", be- 
cause whenever we add a single computation rule, the set of well-typed 
terms may increase. 

5.1 The type of dependent pairs 

In MLF, the constants and computation rules for the type of dependent 
pairs can be specified as follows: 



E 


(A 


Type)(B 


(A)Type)Type 


pair 


(A 


Type)(B 


(A)Type)(a:A)(b:B(a))E(A,B) 


7Tl 


(A 


Type){B 


(A)Type)(z : E(A,B))A 


vr 2 


(A 


Type)(B 


(A)Type)(z : E(A, B))B(tt\ {A, B, z)) 



~K\(A,B,pair(A,B,a,b))=a : A 
7r 2 (A,B,pair(A,B,a,b)) = b : B(a) 

In the arity system of the paper, we change the kinds to arities and the 
constants and the reduction rules are introduced as the following: 

E : (Zero, ((Zero, Zero), Zero)) 
pair : (Zero, ((Zero, Zero), (Zero, (Zero, Zero)))) 
7i"i : (Zero, ((Zero, Zero), (Zero, Zero))) 
7T2 : (Zero, ((Zero, Zero), (Zero, Zero))) 

ir\(A, B,pair(A, B,a,b)) — » ri a : Zero 
7T2(A, B,pair(A, B,a,b)) — > n2 b : Zero 
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5.2 Finite types 

In type systems, a finite type T can be represented by following constants 

T : Type 
ci:T 

c n :T 

S T :(P: (T)Type) 
(P(d))...(P(c B )) 
(z : T)(P(z)) 

and the following computation rules 

£r(P,Pi,-,Pn,ci) =pi : P(ci) 



£T(P,Pl,-,Pn,Cn) =p n : P(c n ) 

In the arity system of the paper, we change the kinds to arities and 
the constants and the computation rules are introduced as follows. 

T : Zero 
c\ : Zero 



c n : Zero 

£t : ((Zero, Zero), 

(Zero, (Zero, ...(Zero, 
(Zero, Zero)...) 

and the following reduction rules 

£r(P,Pi,-..,Pn,ci) — >p\ : Zero 



£r(P,Pi,--,Pn,c n ) — >Pn ■ Zero 

Now, let's consider a concrete example, boolean type. Its representation 
in type systems and in the arity system are the following. 

Bool : Type 
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true : Bool 
false : Bool 
SbooI ■ (P ■ (Bool)Type) 

(pi : P(true))(p 2 ■ P(false)) 

(z : Bool)P(z) 

£Bool(P,Pi,P2,true) = p! : P(true) 
£booi(P,Pi,P2, false) = p 2 : P(false) 

Bool : Zero 

true : Zero 

false : Zero 

£ Bo oi ■ ((Zero, Zero), 
(Zero, (Zero, 
(Zero, Zero)))) 

£Bool(P,Pi,P2,true) — > bl p 1 : Zero 
£booi(P,Pi,P2, false) — > b2 p 2 : Zero 

5.3 Universe operator 

We consider some simple case, for example, 

U : Type 
Bool : Type 
bool : U 
uo : (U)Type 

uo(bool) = Bool 

U : Zero 
Bool : Zero 
bool : Zero 
uo : (Zero, Zero) 

uo(bool) — > u Bool : Zero 
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5.4 Strong normalisation w.r.t. /3?77ri-reduction 

We have proved strong normalisation w.r.t. ^-reduction in Section QJ 
Now, we add the reduction rule ix\ and prove strong normalisation w.r.t. 
(3rjiri -reduction. As mentioned before, the strategy is to prove strong nor- 
malisation one reduction rule after another. So after proving it w.r.t. Prjiri- 
reduction, we can add another rule (eg, ^-reduction), and so on. In this 
section, we demonstrate the proof techniques through the proof w.r.t. 
(3rjiTi -reduction. For other reduction rules such as ir 2 , b\, b 2 and u, the 
proof methods are the same. 

Theorem 4. If M doesn't have a correct arity under a context A without 
the -Ki-reduction then M still doesn't have a correct arity under the context 
A with the iri-reduction. 

Proof. The arities of the left hand side and the right hand side of the 
reduction rule tti are the same, and there is no reduction for arities. So, 
7Ti-reduction becomes irrelevant whether M has a correct arity. 

Remark 7. As mentioned before, in dependently typed systems, a term 
that is not well-typed can become a well-typed term after adding new 
reduction rules. For instance, under a context / : (x : B(a))C and 
y : B(iri(pair(a,b))), the term f(y) is not well-typed (some details are 
omitted here). However, if we add the 7Ti-reduction rule, then it becomes 
a well- typed term. This example shows that, after adding new reduction 
rules, well-typed terms may increase. This is one of the difficulties to prove 
the statement that "well-typed terms are strongly normalising". 

Now, in order to prove strong normalisation, we prove some lemmas first. 

Lemma 4. (Substitution for r]) If M\ — > v M2 then [N/x\M\ — > v 
[N/x]M 2 . And z/iVi — > v N 2 then [N 1 /x}M [N 2 /x]M. 

Proof. For the first part, we proceed the proof by induction on Mi, and 
for the second part, by induction on M. In the case that M is a variable, 
we consider two sub-cases: M = x and M ^ x. 

Lemma 5. If Mt — *p M 2 and x FV(M X ) then x £ FV{M 2 ). 

Proof. By induction on M\. 

Lemma 6. If M\ — > v Xx : K 2 .M 2 then there are three and only three 
possibilities as the following: 
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• Mi = Xy : K\.(\x : K 2 .M 2 )y for some y and K\, and y FV(Xx : 
K 2 .M 2 ). 

• M 1 = Xx : K 2 .N for some N and N — > r] M 2 . 

• Mi = Xx : K\.M 2 for some K\ and K\ — > r) K 2 . 

Proof. By the understanding of one-step reduction. 

Lemma 7. (Commutation for rj/3) If M\ — > v M 2 and M 2 — >p M3 

then there, exists a M' 2 such that Mi -»1 M' 2 and M' 2 M3. 

Proof. By induction on Mi and Lemma 01 El and El 

Lemma 8. (Substitution for tti) If Mi — > ni M 2 then [N/x]Mi — > T1 
[N/x]M 2 . And if Ni — ^ N 2 then [N x /x]M [N 2 /x]M. 

Proof. Similar to the proof of Lemma 

Lemma 9. // M\ — > ni Xx : K 2 .M 2 then there are two and only two 
possibilities as the following: 

• Mi = Xx: K 2 .N for some N and N — > W1 M 2 . 

• Mi = Xx : Ki.M 2 for some Ki and Ki — > W1 K 2 . 

Proof. By the understanding of one-step reduction and the arity of Mi is 
not Zero. 

Lemma 10. (Commutation for iri(3) If Mi — > 7ri M 2 and M 2 — >p 
M3 then there exists a M 2 such that Mi — >p M 2 and M 2 M3. 

Proof. By induction on Mi and Lemma El and El 

Theorem 5. If A\- M : a, then M is strongly normalising w.r.t. ftrjiri- 
reduction. 

Proof. We proceed the proof by contradiction, and by Theorem ^ and 
Lemma and ^1 

Suppose there is an infinite reduction sequence for M and it is called 
S. By Theorem ^ M is strongly normalising w.r.t. /^-reduction. So, S 
must contain infinite times of 7Ti-reduction. Every time when 77-reduction 
or 7Ti-reduction rule is applied, terms become smaller. So, M is strongly 
normalising w.r.t. 77^1 -reduction. And hence S must also contain infinite 
times of /3-reduction. In fact, S must be like the following, 

M -»+ 1 Mi -»+ M 2 -»+ 1 M 3 -»+ M 4 1 ... 
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or 

M -»+ Mi M 2 -«+ M 3 1 M 4 -»+ ... 

where -»t means one or more but finite reduction steps of j3, and similarly, 
-»n7ri means one or more but finite reduction steps of r? or 7Ti. 

Now, by Lemma0and Lemma fTTH for the infinite sequence S, we can 
always move the /3-reduction steps forward and build an infinite sequence 
of /3-reduction. This is a contradiction to that M is strongly normalising 
w.r.t. /3-reduction. □ 



6 Conclusions and future work 

Strong normalisation for MLF has been proved in the paper, but we 
did not follow the traditional understanding, that is, well-typed terms 
are strongly normalising. Instead, a weaker condition has been proposed, 
which says terms with correct arities are strongly normalising. The au- 
thor hopes this new understanding will inspire us to think the question 
"why is a term strongly normalising?" again, and to simplify the proofs 
for dependently typed systems. 

Another important technique employed in the paper is that, in order to 
prove what we want, we prove a more general and stronger property. In the 
paper, the definition of terms and kinds is extended and a new reduction 
rule 02 is introduced. And we proved strong normalisation w.r.t. ftrjfa- 
reduction instead of w.r.t. /^-reduction only. This generalisation is quite 
different from the traditional idea of generalising induction hypothesis. 

We only studied the computation rules for some inductive data types 
and these rules have commutation property. However, some computation 
rules do not have such property, for instance, the computation rule for the 
type of function space. How to prove strong normalisation for such rules 
needs further study. The question of how to develop weaker conditions 
to simplify the normalisation proofs for other type systems is also worth 
being taken into our consideration. 
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Appendix 

Terms and Kinds in MLF 

• Terms 

1. a variable is a term, 

2. Ax : K.M is a term if x is a variable, K is a kind and M is a term, 

3. MN is a term if M and N are terms. 

• Kinds 

1. Type is a kind, 

2. El(M) is a kind if M is a term, 

3. (x : K\)K2 is a kind if K\ and K 2 are kinds. 

Reduction rules in MLF 

{Xx : K.M)N — [N/x}M 

Xx : K.Mx — ►„ M x FV(M) 

Inference rules for MLF 

Contexts and assumptions 

r h K kind x <£ FV{r) r,x:K, r' valid 
<> valid r,x : K valid r,x : K,T' h x : K 

Equality rules 

r h K kind r h K = K' r h K = K' T h K' = K" 
r h K = K r\-K' = K r h K = K" 

r \- k : K r h k = k' : K r h k = k' : K T h k' = k" : K 
r h k = k : K TVk> = k:K T h k = k" : K 

r \- k : K r \- K = K' r h k = k! : K r h K = K' 
r \- k : K' r \- k = k' : K' 

Substitution rules 

r,x: K, r' valid r h k : K 
r, [k/x]r' valid 

r,x: K,r'\- K' kind r h k : K r,x: K,T\- K' kind r h k = k' : K 
r, [k/x]r' h \kfx\K' kind T, \kJx\T' h \kJx\K' = [k'/x]K' 

r,x : K,T' h k! : K' T h k : K r,x : K,T' \- k' : K' T \- h = k 2 : K 

r, [k/x\r P [fc/x]fc' : [fe/x]^' r, [fci/x]r' P [fci/x]fc' = [k 2 /x\ \ %Jx\k' 
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r,x : K, T' \- K' = K" r \- k : K T,x : K, T' h k' = k" : K' T h k : K 

r, [k/x\r> v- [k/ x ]K> = [k/x]K" r, [k/x]r> F [fc/x]^ = ■ [k/x]K' 

The kind type 

r valid r \- A: Type T h A = B : Type 

TTTypeldnd T h El(A) kind T h El{A) = El(B) 

Dependent product kinds 

r h K kind T,x: KY~ K' kind TVK X = K 2 T, x : K x h K[ = K' 2 
TVJxTkJk' kind fh(i: K{)K[ = (x : K 2 )K' 2 

T,x:Khk:K' T h K x = K 2 T, x : K x h k x = k 2 : if 

fh Ax: if./c : (x : r h Ax : ^.fci = Ax : K 2 .k 2 : (x : 

r h / : (x : K)K' T h k : K T h / = /' : (x : r h h = k 2 : K 

r h /(fc) : [fc/x]^' r h /(fci) = : [h/x]K' 

T,x : Kh k! : K' TV- k : K T h / : (x : K)K' x $ FV(f) 

^ T h (Ax : = [fc/x]fc' : [k/x]K> ^ T h Ax : K./(x) = / : (x : 
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